This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/TskIBboLcFBuqPn_MOgE03hfzQA.roa File: TskIBboLcFBuqPn_MOgE03hfzQA.roa (raw, json) Hash identifier: mdOwXyGLiZ3kiLeepuX9bG0ElkLvweofxQqMwNHkNZM= Subject key identifier: 4E:C9:08:05:BA:0B:70:50:6E:A8:F9:FF:30:E8:04:D3:78:5F:CD:00 Certificate issuer: /CN=0b4e3b3b84242258863142ed3a19792d97cbbc74 Certificate serial: 019B7AC879B9F3228A4E55574AD1AF36B2ED Authority key identifier: 0B:4E:3B:3B:84:24:22:58:86:31:42:ED:3A:19:79:2D:97:CB:BC:74 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/C047O4QkIliGMULtOhl5LZfLvHQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/TskIBboLcFBuqPn_MOgE03hfzQA.roa Signing time: Thu 01 Jan 2026 18:18:37 +0000 ROA not before: Thu 01 Jan 2026 18:18:37 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 209186 IP address blocks: 2a0d:d940:900d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/C047O4QkIliGMULtOhl5LZfLvHQ.crl rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/C047O4QkIliGMULtOhl5LZfLvHQ.mft rsync://rpki.ripe.net/repository/DEFAULT/C047O4QkIliGMULtOhl5LZfLvHQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 06:01:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:79:b9:f3:22:8a:4e:55:57:4a:d1:af:36:b2:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0b4e3b3b84242258863142ed3a19792d97cbbc74 Validity Not Before: Jan 1 18:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4ec90805ba0b70506ea8f9ff30e804d3785fcd00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d0:eb:c3:b2:e9:63:7e:55:43:6f:0a:a8:db: 0a:91:9d:63:fa:55:6f:bc:34:6d:89:c9:7c:b1:eb: e0:5c:81:24:f9:18:2a:ac:21:5c:57:68:b9:dc:ed: 47:ad:26:74:b1:fc:d7:f0:f5:53:10:c4:d7:20:b0: 3a:a2:a1:8d:db:19:64:ce:94:09:2e:bf:ba:69:75: b2:ca:9f:dc:ab:85:f2:6e:45:4c:1b:de:7c:27:4c: f9:d9:ec:77:4e:f1:67:e6:0d:60:eb:82:88:3c:ac: 91:ff:2e:cc:ff:92:28:02:e9:f2:80:92:2c:7e:e3: 1a:5a:0b:d3:13:ee:84:c0:02:26:d1:fa:5f:a0:bf: fe:93:52:a3:a2:d5:6c:53:cf:fc:e9:73:e5:53:6c: 7f:a5:95:84:40:f8:7e:1b:a6:ae:6f:92:c7:fc:c1: 57:24:ba:ca:ab:a2:95:79:a6:02:23:15:aa:75:04: 15:93:ca:43:87:dd:09:3c:0c:87:d0:e1:8b:d9:69: 00:63:8b:bc:f5:c9:13:96:b9:55:79:91:65:6a:9c: dc:f9:1f:23:52:3d:a5:89:55:82:c9:13:3b:a1:98: 7c:03:d4:41:39:91:4d:ed:e1:94:07:53:7b:29:95: 64:c4:95:2e:c7:c6:2f:0b:f8:99:c3:f0:ca:40:31: 2f:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:C9:08:05:BA:0B:70:50:6E:A8:F9:FF:30:E8:04:D3:78:5F:CD:00 X509v3 Authority Key Identifier: keyid:0B:4E:3B:3B:84:24:22:58:86:31:42:ED:3A:19:79:2D:97:CB:BC:74 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/C047O4QkIliGMULtOhl5LZfLvHQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/TskIBboLcFBuqPn_MOgE03hfzQA.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/7ba1b1-5562-4a32-9f5d-14d238527835/1/C047O4QkIliGMULtOhl5LZfLvHQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a0d:d940:900d::/48 Signature Algorithm: sha256WithRSAEncryption 0f:19:5a:48:57:c6:25:93:b5:b1:2a:76:20:e9:c5:62:98:70: 07:e9:de:d1:d9:c2:fc:0f:f9:ef:1d:26:2e:22:c3:4a:df:47: 09:68:83:85:0a:ed:e5:56:f8:44:73:ba:8e:68:7e:0a:bd:5c: 29:22:44:55:63:b3:32:6d:c0:1b:55:de:df:fa:c4:40:fd:bc: 0c:04:b2:cc:d6:66:92:62:e9:b1:62:c0:15:31:bd:42:c1:3b: 96:dc:2f:8c:16:63:a5:bd:52:2c:e3:ca:fc:7b:ad:35:9f:0a: f3:29:eb:8b:2e:b9:ee:9d:0f:4c:31:30:27:39:ac:a9:ed:c6: 9f:a7:c5:21:2a:12:26:3c:22:6e:d1:18:b0:78:df:cc:f5:11: 51:60:74:49:ba:cc:67:e0:05:c9:4e:91:3c:3c:1f:f5:95:64: 68:38:43:bf:ed:ca:6c:10:95:72:22:57:25:2d:1e:28:73:fc: 9e:ae:d7:e3:e9:87:75:1f:0a:77:f9:fc:9e:e4:59:d9:ce:29: 39:81:7e:80:59:fb:b8:c5:ed:99:92:a8:47:23:c6:9f:d8:40: cf:b8:c0:b3:0a:36:69:86:23:aa:c8:aa:d7:a5:7f:b9:ec:1a: b3:dc:a6:f7:25:b6:cb:31:33:17:fb:d6:c0:5f:66:11:13:66: f2:79:d4:21 -----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgISAZt6yHm58yKKTlVXStGvNrLtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDBiNGUzYjNiODQyNDIyNTg4NjMxNDJlZDNhMTk3OTJkOTdj YmJjNzQwHhcNMjYwMTAxMTgxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZWM5MDgwNWJhMGI3MDUwNmVhOGY5ZmYzMGU4MDRkMzc4NWZjZDAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw9Drw7LpY35VQ28KqNsKkZ1j+lVv vDRticl8sevgXIEk+RgqrCFcV2i53O1HrSZ0sfzX8PVTEMTXILA6oqGN2xlkzpQJ Lr+6aXWyyp/cq4XybkVMG958J0z52ex3TvFn5g1g64KIPKyR/y7M/5IoAunygJIs fuMaWgvTE+6EwAIm0fpfoL/+k1KjotVsU8/86XPlU2x/pZWEQPh+G6aub5LH/MFX JLrKq6KVeaYCIxWqdQQVk8pDh90JPAyH0OGL2WkAY4u89ckTlrlVeZFlapzc+R8j Uj2liVWCyRM7oZh8A9RBOZFN7eGUB1N7KZVkxJUux8YvC/iZw/DKQDEvOQIDAQAB o4ICDDCCAggwHQYDVR0OBBYEFE7JCAW6C3BQbqj5/zDoBNN4X80AMB8GA1UdIwQY MBaAFAtOOzuEJCJYhjFC7ToZeS2Xy7x0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQzA0N080UWtJbGlHTVVMdE9obDVMWmZMdkhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS83YmExYjEtNTU2Mi00YTMyLTlmNWQt MTRkMjM4NTI3ODM1LzEvVHNrSUJib0xjRkJ1cVBuX01PZ0UwM2hmelFBLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS83YmExYjEtNTU2Mi00YTMyLTlmNWQtMTRkMjM4NTI3ODM1 LzEvQzA0N080UWtJbGlHTVVMdE9obDVMWmZMdkhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAKg3ZQJAN MA0GCSqGSIb3DQEBCwUAA4IBAQAPGVpIV8Ylk7WxKnYg6cVimHAH6d7R2cL8D/nv HSYuIsNK30cJaIOFCu3lVvhEc7qOaH4KvVwpIkRVY7MybcAbVd7f+sRA/bwMBLLM 1maSYumxYsAVMb1CwTuW3C+MFmOlvVIs48r8e601nwrzKeuLLrnunQ9MMTAnOayp 7cafp8UhKhImPCJu0RiweN/M9RFRYHRJusxn4AXJTpE8PB/1lWRoOEO/7cpsEJVy IlclLR4oc/yertfj6Yd1Hwp3+fye5FnZzik5gX6AWfu4xe2ZkqhHI8af2EDPuMCz CjZphiOqyKrXpX+57Bqz3Kb3JbbLMTMX+9bAX2YRE2byedQh -----END CERTIFICATE-----Generated at Wed Jan 21 13:49:47 2026 by rpki-client